$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: cQi8hqLeaewuzcLFjE5/0o+kzbIvOYdTs+zYW+TWZ7w= Subject key identifier: 5D:45:7D:B4:74:49:35:C7:55:16:60:1C:F5:20:25:12:EA:89:18:E2 Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 015B Signing time: Sat 27 Apr 2024 04:47:18 +0000 Manifest this update: Sat 27 Apr 2024 04:47:17 +0000 Manifest next update: Sat 04 May 2024 04:47:17 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: 01qSfqidzkLdL72Cw0loqwhy2qBVzXkxXdgGDHFGiwo=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: q8DktJHLL6HIxH3T7EfJQLu7FIon7noJlUsqAjUVxI4=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: l0194bjdGtz77Fz9oaK/bKgSyyC0uvHnYK7BIpRjhCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Apr 27 04:47:17 2024 GMT Not After : May 4 04:47:17 2024 GMT Subject: CN=662c8355-c0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a4:ed:07:0f:65:30:76:1e:50:cd:5f:71:eb: 0a:a6:f3:19:a4:9e:f2:9f:50:fa:ad:5c:82:b5:26: 27:08:5c:ad:ca:a1:0c:d9:e8:86:df:c5:46:8c:1f: b5:07:0a:58:50:0f:8f:7d:14:c3:e1:cb:8e:6d:b3: 6e:ff:00:08:10:94:92:45:45:80:40:9a:6c:72:bf: 83:77:52:28:6e:8e:c2:78:4e:ff:6d:12:6c:ab:4d: 00:87:12:c5:d9:5a:d3:bc:15:a5:73:78:2f:48:78: c9:8f:6a:77:83:40:13:47:63:2c:68:3f:a7:12:09: bd:df:98:5f:be:82:7f:aa:e6:89:89:91:5f:de:5a: 72:93:67:c0:55:d3:d9:2b:88:2b:ca:b0:e5:18:8a: 3f:ad:02:83:d3:1f:c4:77:f6:a2:3f:c2:db:ba:63: d9:11:cf:cb:02:dd:ab:24:fc:c8:5c:0d:80:68:2e: 07:88:59:a1:f0:ba:ff:cd:08:85:1f:8f:08:72:11: 73:d3:74:09:c0:1a:4f:52:44:b6:80:79:cd:5f:14: bb:75:ac:be:07:8f:28:1c:e8:b9:62:ec:c4:0b:f6: ad:bc:7c:66:02:41:7a:53:0b:32:7f:ed:2c:31:ac: 05:b3:31:d7:a5:51:f7:e9:9d:0d:b8:70:05:ea:41: 76:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:45:7D:B4:74:49:35:C7:55:16:60:1C:F5:20:25:12:EA:89:18:E2 X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b4:65:45:44:b8:8a:84:06:39:3a:78:83:96:64:fd:7d:ce: bb:a8:67:25:78:36:bb:1e:ea:77:7c:28:11:70:29:1d:29:77: ea:34:92:8c:62:29:bd:e4:ab:18:9c:e7:2c:6a:61:81:0e:3d: 8d:49:6e:72:15:d5:6b:b3:e0:b6:b5:3c:73:da:e3:e2:40:4f: ee:31:c5:45:64:40:2d:96:fb:3f:d0:4d:b3:ec:3b:eb:1a:ae: b9:97:27:3e:a3:cf:0a:b4:e1:30:fe:84:2f:5b:b5:36:33:be: 12:ca:b5:f4:46:9d:72:e6:04:36:35:98:40:10:29:ea:ba:99: aa:28:96:77:58:0a:bd:c2:76:0b:77:a7:5e:24:82:17:23:f9: 6f:e5:d8:fb:80:5c:0d:61:83:81:69:84:57:bb:ff:b3:b5:ee: 92:10:9c:4e:b8:fd:18:56:79:e0:23:9b:80:87:bc:dd:1e:2f: da:85:75:a3:52:e2:5d:1d:7d:8a:8c:3b:28:f4:45:2e:08:c7: 63:9e:d3:db:94:4a:07:21:6b:79:1f:78:89:31:9f:a4:d4:5b: ae:5e:c2:36:81:2e:c0:cf:dd:9a:68:2e:1b:2c:5f:0a:1d:73: e4:76:e4:c6:4f:6b:b8:c7:ab:9b:7e:04:e3:f2:ce:b7:a8:bd: 6a:99:ad:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjQwNDI3MDQ0NzE3WhcNMjQwNTA0MDQ0NzE3WjAYMRYwFAYD VQQDEw02NjJjODM1NS1jMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7aTtBw9lMHYeUM1fcesKpvMZpJ7yn1D6rVyCtSYnCFytyqEM2eiG38VGjB+1 BwpYUA+PfRTD4cuObbNu/wAIEJSSRUWAQJpscr+Dd1Iobo7CeE7/bRJsq00AhxLF 2VrTvBWlc3gvSHjJj2p3g0ATR2MsaD+nEgm935hfvoJ/quaJiZFf3lpyk2fAVdPZ K4gryrDlGIo/rQKD0x/Ed/aiP8LbumPZEc/LAt2rJPzIXA2AaC4HiFmh8Lr/zQiF H48IchFz03QJwBpPUkS2gHnNXxS7day+B48oHOi5YuzEC/atvHxmAkF6Uwsyf+0s MawFszHXpVH36Z0NuHAF6kF2uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1FfbR0 STXHVRZgHPUgJRLqiRjiMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKtGVFRLiKhAY5OniDlmT9fc67qGcleDa7Hup3fCgRcCkdKXfqNJKM Yim95KsYnOcsamGBDj2NSW5yFdVrs+C2tTxz2uPiQE/uMcVFZEAtlvs/0E2z7Dvr Gq65lyc+o88KtOEw/oQvW7U2M74SyrX0Rp1y5gQ2NZhAECnqupmqKJZ3WAq9wnYL d6deJIIXI/lv5dj7gFwNYYOBaYRXu/+zte6SEJxOuP0YVnngI5uAh7zdHi/ahXWj UuJdHX2KjDso9EUuCMdjntPblEoHIWt5H3iJMZ+k1FuuXsI2gS7Az92aaC4bLF8K HXPkduTGT2u4x6ubfgTj8s63qL1qma3N -----END CERTIFICATE-----Generated at Sat Apr 27 10:21:00 2024 by rpki-client on console-ams.rpki-client.org